CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5277

Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.055

EPSS Ranking 89.7%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2006-5277

Cisco » Unified Callmanager » Version: 3.3

cpe:2.3:a:cisco:unified_callmanager:3.3
Cisco » Unified Callmanager » Version: 3.3(2)

cpe:2.3:a:cisco:unified_callmanager:3.3(2)
Cisco » Unified Callmanager » Version: 3.3(2)spb

cpe:2.3:a:cisco:unified_callmanager:3.3(2)spb
Cisco » Unified Callmanager » Version: 3.3(2)spc

cpe:2.3:a:cisco:unified_callmanager:3.3(2)spc
Cisco » Unified Callmanager » Version: 3.3(3)

cpe:2.3:a:cisco:unified_callmanager:3.3(3)
Cisco » Unified Callmanager » Version: 3.3(3)sr1

cpe:2.3:a:cisco:unified_callmanager:3.3(3)sr1
Cisco » Unified Callmanager » Version: 3.3(3)sr4

cpe:2.3:a:cisco:unified_callmanager:3.3(3)sr4
Cisco » Unified Callmanager » Version: 3.3(4)

cpe:2.3:a:cisco:unified_callmanager:3.3(4)
Cisco » Unified Callmanager » Version: 3.3(4)sr1a

cpe:2.3:a:cisco:unified_callmanager:3.3(4)sr1a
Cisco » Unified Callmanager » Version: 3.3(5)

cpe:2.3:a:cisco:unified_callmanager:3.3(5)
Cisco » Unified Callmanager » Version: 3.3(5)sr1

cpe:2.3:a:cisco:unified_callmanager:3.3(5)sr1
Cisco » Unified Callmanager » Version: 3.3(5)sr1a

cpe:2.3:a:cisco:unified_callmanager:3.3(5)sr1a
Cisco » Unified Callmanager » Version: 3.3(5)sr2

cpe:2.3:a:cisco:unified_callmanager:3.3(5)sr2
Cisco » Unified Callmanager » Version: 4.1

cpe:2.3:a:cisco:unified_callmanager:4.1
Cisco » Unified Callmanager » Version: 4.1(2)

cpe:2.3:a:cisco:unified_callmanager:4.1(2)
Cisco » Unified Callmanager » Version: 4.1(3)

cpe:2.3:a:cisco:unified_callmanager:4.1(3)
Cisco » Unified Callmanager » Version: 4.1(3)sr1

cpe:2.3:a:cisco:unified_callmanager:4.1(3)sr1
Cisco » Unified Callmanager » Version: 4.1(3)sr2

cpe:2.3:a:cisco:unified_callmanager:4.1(3)sr2
Cisco » Unified Callmanager » Version: 4.1(3)sr3

cpe:2.3:a:cisco:unified_callmanager:4.1(3)sr3
Cisco » Unified Callmanager » Version: 4.1(3)sr4

cpe:2.3:a:cisco:unified_callmanager:4.1(3)sr4
Cisco » Unified Callmanager » Version: 4.2

cpe:2.3:a:cisco:unified_callmanager:4.2
Cisco » Unified Callmanager » Version: 4.2(3)sr1

cpe:2.3:a:cisco:unified_callmanager:4.2(3)sr1
Cisco » Unified Callmanager » Version: 5.0

cpe:2.3:a:cisco:unified_callmanager:5.0
Cisco » Unified Communications Manager » Version: 4.3

cpe:2.3:a:cisco:unified_communications_manager:4.3
Cisco » Unified Communications Manager » Version: 4.3(1)

cpe:2.3:a:cisco:unified_communications_manager:4.3(1)
Cisco » Unified Communications Manager » Version: 5.1

cpe:2.3:a:cisco:unified_communications_manager:5.1
Cisco » Unified Communications Manager » Version: 5.1(1)

cpe:2.3:a:cisco:unified_communications_manager:5.1(1)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5277

Products

Pricing

Contact Us